Vulnerabilities > CVE-2021-3434 - Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.5.0/2.5.1

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
zephyrproject
CWE-787
NVD
Published: 2022-06-28
Updated: 2022-07-08

Summary

Stack based buffer overflow in le_ecred_conn_req(). Zephyr versions >= v2.5.0 Stack-based Buffer Overflow (CWE-121). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-8w87-6rfp-cfrm

Vulnerable Configurations

Part Description Count
OS
Zephyrproject
6

Common Weakness Enumeration (CWE)

References